Citibank Tries to Hush ATM Crypto Vulnerability 410
palme999 writes "Citibank is trying to get a gag order for new
vulnerabilities found in the cryptographic equipment commonly used to protect the PINs of ATM transactions. The vulnerabilities came to light during a court case involving 'phantom' ATM transactions that users deny making but that banks still charge to customers accounts because they claim their systems are secure."
ATM? I don't need no stinkin' ATM! (Score:5, Funny)
The ATM in the WalMart by us runs Windows.
And it crashes, gives blue screens, and popup error messages all the time.
Who needs security when the system can't even run stabily?
cool (Score:1, Funny)
Maybe I can get all of that money back.
Re:in case of /. (Score:2, Funny)
Tell 'em to prove it. (Score:4, Funny)
Dolemite
So easy to read! (Score:2, Funny)
New System (Score:5, Funny)
woah! (Score:5, Funny)
Submission to /. (Score:5, Funny)
Much quicker then a court order.
PINs can't work, only RSA will do. (Score:1, Funny)
Re:ATM? I don't need no stinkin' ATM! (Score:1, Funny)
Re:and only 15minutes ago.. (Score:4, Funny)
A west coastism is to refer to twenty dollar bills as "Yuppie Foodstamps" because cash machines only dispense twenties, and thus people who rely on them never seem to have anything but.
KFG
Credit please (Score:3, Funny)
involving 'phantom' ATM transactions that users deny making but that banks still charge to customers accounts because they claim their systems are secure
"Honestly, Mr. Citibank Manager, why would I guy several cases of Fort Garry Ale [fortgarry.com] or Guinness [guinness.ie]? I demand you credit my account.
Coincidence..., I think not. (Score:3, Funny)
George Lucas is involved here somwhere.
--
I sense a great disturbance in the fiber, as if a million ATM transactions were suddenly silenced...
Go back to sleep children (Score:5, Funny)
Your money is safe.
The world is simple.
You are with us or against us.
Go buy yourself something, you deserve it.
Those in charge know what they are doing and will take care of you.
Re:woah! (Score:4, Funny)
Old news (Score:3, Funny)
Candid Camera (Score:4, Funny)
When these "phantom transactions" occur, I assume there is a picture taken of a dark wraith in a hooded cloak.
But seriously, wouldn't the bank have your picture if you had performed a transaction?
What really happened.. (Score:3, Funny)
The problem was discovered in the syste-
*sounds of struggle*
Where are you throwing meeeeee...
I just had a thought. . . (Score:3, Funny)
My experience with ATM cameras... (Score:5, Funny)
In 1983, my first job out of college was as an internal auditor at a small regional bank that had only seven branches. We were just installing ATMs and most of our customers were elderly types who weren't interested in these new fangled computers. I, being young and more enlightened, loved them, used them all the time, and rarely carried much cash at all, preferring to just stop by a convenient ATM for a fresh withdrawal. This was in the days when banks considered ATMs as a money saver because customers would use the ATM rather than coming inside to bother a teller, thus saving the bank loads of money by reducing the number of tellers they had to employ, so there were no fees. But I digress...
One of our older patrons had his ATM card misappropriated by a handyman, family member, or other close associate, and said villian used the card to make several large withdrawals. The customer reported the problem, we told the system to capture the card on the next use, and waited.
Within a week, the card was used, and captured. The film from the camera was sent off (these days it's probably digital). The ATM company found that either our tellers had been ordering the wrong kind of film for our ATMs, or they had been sending us the wrong kind, or the tellers where installing it wrong, or something. They sent a note with that info to our President, explaining that the photo was probably the wrong person and wouldn't hold up in court, along with the developed photograph.
Fortunately he read the note before he looked at the photograph, because the guy in the photo was me! He came into my office and with as serious an expression as he could manage, told me they had the photo back, and had their man (I didn't know about the problem with the film at this point). He slid open the envelope, and there in stark black and white was me, probably on a Saturday morning, unshaven and in a dirty Ramones t-shirt.
I stuttered for a few seconds but he couldn't hold it together and started laughing. Needless to say that photo appeared all over the bank for the next several years, along with signs like "Have you seen this man?" and "Do not serve - notify security." We figured that since I used the ATM so much, I was probably on 85% of the photos on the film. The odds were pretty good that with the indexes being wrong I would come up, but it couldn't have been a worse photograph.
Oh, eventually the real crook was caught because he came into the bank to complain that the ATM had taken "his" card and the replacement hadn't arrived yet.
Re:ATMs are fallible in lots of ways (Score:3, Funny)
I held it up and counted, like there was a little guy in there and started screaming at it. I went to my bank the next day, and the say they had to review it. A few days later they credited me. I assume one of the things they did was look at the tape.
Now I always count it in front of the camera so if there is a problem I've got proof.
Re:and only 15minutes ago.. (Score:3, Funny)
Re:What really happened.. (Score:2, Funny)
We apologise for the fault in the last post. Those responsible have been sacked.
Re:An old vulnerability (Score:5, Funny)
m$ wants sites to stay unavailable (Score:3, Funny)
Gotta love how when the server gets too busy, it suggests you keep hammering it. :)